You're sitting on DNS logs and not getting enough out of them. Use @AlphaSOC_ to quickly gain meaningful insights: http://alphasoc.com
I think orgs also avoid turning on DNS logging b/c they don't know what they'd do with them. This makes it easy.
-
-
Maybe so, but I would also say "nothing Splunk" is free. My saying put logs there is formula to be ignored. Sad, but true
-
Maybe another jousting session is overdue. I don't mean to come across negatively, but would consider other solutions.
-
That's honest. There are people this helps, and people it won't. I think future versions may drop Splunk as a req.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.